Hi,
I don't agree with this, actually even Bugzilla.conf should be readable, as the settings from that file are meant to be used as "defaults" and are passed to the clients (gui/cli) anyway, so making it not readable doesn't make sense...
J.

(In reply to comment #2)
> GUI and CLI may ask daemon for the defaults.
Yes, that's what happen, daemon tells the password to gui/cli which means it's passed to the non-root app, so what's the point of making it not-readable, when user can read it in gui/cli anyway? These files are not meant to be used for secrets, they just *can be* if root want's to set the password somewhere save he can use $HOME/.abrt/<plugin_name>.conf, but imagine a situation where you want all user to use the same account for submitting a bugs ...
J.